CVE-2025-44594CRITICAL 9.1EPSS p26.5%

CVE-2025-44594CVE-2025-44594

Description

halo v2.20.17 and before is vulnerable to server-side request forgery (SSRF) in /apis/uc.api.storage.halo.run/v1alpha1/attachments/-/upload-from-url.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.35% probability of exploitation · percentile 26.5% · 2026-06-19T12:03:05Z
Published2025-09-09
Last modified2025-09-17

Underlying weaknesses· 1

CWE-918

References

  1. https://meadow-horn-b94.notion.site/halo-ssrf-14c42bd5b11880c09936df07f58f5bed?pvs=74

1

TypeTargetConfidenceTier
WeaknessServer-Side Request Forgery (SSRF)cwe-9180%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-41714
CVE
CVE-2025-41735
CVE
CVE-2025-46385
CVE
CVE-2025-27217
CVE
CVE-2025-46384
CVE
CVE-2025-37090
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.